Stephen During al - VP of Sales, Marketing, & Promotions, Arch Access Control

Keep in touch with meI'm using Intch to connect with new people. Use this link to open chat with me via Intch app

Work Background

Arch Access ControlVice President of Sales, Marketing, & Promotion

Nov. 2021Pittsburgh, Pennsylvania, United StatesI've partnered with Arch Access Control's Founder & CEO Martin Shepherd because of our shared mission to help ease companies' fear of loss due to a cyber security breach. More importantly, doing cyber security with minimal or no disruption/reconfiguration of business processes. By helping companies significantly reduce that fear, they can truly focus on their mission and optimize value. Without fear, companies - and people - are empowered to fulfill their purpose and empowered to thrive. With almost 20 years of cybersecurity experience focused in compliance, governance, and strategy, I've learned that most companies - particularly small-medium sized companies - do not have the internal resources to protect their company's digital assets. Moreover, most companies don't have a strategic vision that accounts for cyber security risk. In a collaborative response to those observations, we have crafted a strategy to identify and address cyber security risks. We have assembled a team of software developers, engineers, consultants, project managers, and security analysts focused on helping small-medium sized businesses protect their digital assets with no or minimal impact to their business processes. We built an assessment tool that scores clients' current security posture and facilitates the implementation of a compliance or best-practices plan of action. We don't just identify clients' problems, we also help solve them: cybersecurity consulting (vCISO), multi-factor authentication (MFA), secured segregated backups, endpoint threat management, security incident management, policy and procedure development and implementation, a 24/7 security operation center, and more. I work to ensure that people's daily experience is free from danger and fear.

Connectivity Communications Inc.Chief Information Security Consultant

Jan. 2017Greater Pittsburgh RegionI've partnered with Connectivity Communications to help small and medium sized businesses, including K-12, secure their digital assets with cybersecurity solutions, services, and consulting with enterprise-level value priced for the SMB market.

Create A Legacy, LLCFounder and CEO

Dec. 2016Greater Pittsburgh AreaCorporate IT and Cybersecurity Dropout helping burned out IT & Cybersecurity professionals who've lost their zeal for their corporate careers yet have tremendous talent and motivation to be there own boss. I partner with dreamers who know their is more to life than the "9-5" through teaching proven tactics to build a secondary income WHILE working full-time through our state of the art resources and globally recognized training to provide a potentially limitless income. Proven track record of building consistent residual income with a passion to show others how to do the same, which is to create secondary income streams that MATCH and/or EXCEED current corporate incomes to allow more: - CHOICE - FINANCIAL FREEDOM - TIME FREEDOM Health and Wellness Advocate Public Speaker Professional Networker & Team Builder Book a 20 minute Discovery call and/or check out my website:

IndependentCybersecurity Consultant

Dec. 2016 - Nov. 2021Greater Pittsburgh AreaFocused on helping small and medium sized businesses implement or improve their cybersecurity posture across the entire organization in the following areas: - Cybersecurity Strategy, Governance, and Compliance - Regulatory and audit cybersecurity analysis and compliance - Cybersecurity Policy and Procedure deve lopment and integration - Long term cybersecurity strategy implementation - Business continuity and disaster recovery cyber incident management - Cybersecurity Role Based Access Control development and implementation - Risk and Control GAP analysis and mitigation strategies - Application and data security governance - Compliance Responsibility for HIPAA/HITECH, NIST, GLBA, PCI, and SOX - Critical Infrastructure cybersecurity framework implementation (NIST) - Cybersecurity Awareness and Training programs - Virtual Chief Information Security Officer (vCISO)

Plus ConsultingSecurity Consultant

Jan. 2016 - Nov. 2016Greater Pittsburgh AreaDeveloping and managing long-term customer focused business development and growth strategies within the Security & Strategy Practice. Develop and deploy long-term security strategies and solutions by dynamically collaborating with customers across a multitude of industries. Specializing in analysis and implementation of corporate IT security strategies aligned with corporate strategies and compliance with regulatory requirements (NIST, HIPAA/HITECH, NRC 5.71, COBIT, PCI-DS, ISO 27001/2). Manage the analysis and deployment of Cyber-Security Framework development with Critical Infrastructure identified organizations. Develop and foster long-term relationships allowing for continued support and refinements as organizations grow and adapt to ever-changing environments.

United States Steel CorporationCyber/Information Security Consultant (Contractor - Gentech)

Dec. 2014 - Jan. 2016Greater Pittsburgh AreaPlanning, implementing, and maintaining information security solutions within the Security Engineering & Architecture team. Contributing to the development, implementation, and maintenance of a corporate-wide information classification program aligned to the business. Interfacing between the business and key stakeholders in the IT, Law, and Corporate Security organizations with the goal of continually improving the processes of classification and handling of business information.

Plus ConsultingSecurity Consultant

Jan. 2014 - Dec. 2014Greater Pittsburgh AreaInformation security consulting with numerous regional and national organizations. Specialized in analyzing and implementing corporate IT security strategies aligned with corporate strategies and compliance with regulatory requirements. Expertise in application security and compliance to industry standards and regulations - NIST Cyber Security Framework, HIPAA, HITECH, NRC 5.71, COBIT, PCI, HITECH, ISO 27001/2.

Deal & Associates Mobile MarketingOwner/Regional Director

Mar. 2012 - Feb. 2014Greater Pittsburgh AreaDevelop, market, and sell the iZigg "90210" Mobile Marketing product in the greater Pittsburgh area. Responsible for the recruitment of Agents to expand the iZigg mobile marketing product in the greater Pittsburgh area. Lead Agents on the use and marketing of iZigg mobile marketing. Collaborate on the development of training documentation.

Coventry Health CareSenior Information Security Analyst, Information Security Administration

Jun. 2010 - Oct. 2012Greater Pittsburgh AreaProject Manager for corporate-wide Role Based Access Control (RBAC) development and implementation. Responsible for ensuring SOX-SOD compliance within the corporate claims transaction and management application (IDX). Manage onshore/offshore contractor on-boarding application/system access. Serve as the Information Security Representative for all corporate projects involving application and/or user access to the IDX application. Coordinate the implementation of defined access request and work queue configurations within the access management application. Develop, implement, and support department SQL/MS-Access databases supporting end-user processing and departmental reporting. Information Security Representative for corporate merger & acquisition acquired applications.

Coventry Health CareSupervisor Information Security, Information Security Administration

Dec. 2006 - Jun. 2010Greater Pittsburgh AreaEnsure team meets/exceeds corporate published SLAs/SLOs for application access requests and access issue tickets. Manage analyst team members supporting department data and reporting needs - SQL/MS-Access platforms and interfaces. Define and publish training requirements for department staff. Ensure department staff complete required training. Responsible for the completion of annual staff competency reviews. Jointly define annual staff production goals and responsibilities. Facilitated bi-weekly staff meetings with successful staff involvment. Responsible for ensuring SOX-SOD compliance within the corporate claims transaction and management system (IDX).

Coventry Health CareBusiness Analyst, IT Compliance and Information Security

Dec. 2005 - Nov. 2006Greater Pittsburgh AreaResponsible for ensuring SOX-SOD compliance within the corporate claims transaction and management system (IDX). Conduct annual HIPPA minimum necessary (least privilege) reviews of employee’s access to applications containing Protected Health Information (PHI). Developed, implemented, and supported SQL/MS-Access data repositories supporting end-user inquiries and departmental reporting requirements. Serve as HIPAA and IT Security expert on the IT Compliance and Information Security team. Support and maintain Virtual Policy Center (NetIQ) application. Provide technical and data support to the Business Continuity department. Developed and maintained automated process for identifying claim transaction and management system (IDX) SOX-SOD violations. Streamlined and automated processes to identify a user’s access to claim transaction and management system (DX). Responsible for incorporating the HIPAA Security requirements into the corporate HIPAA Annual Audit process/review.